Loading...

XML

Word

Printable

Type: Bug
Resolution: Done-Errata
Priority: Undefined
Fix Version/s: None
Affects Version/s: rhel-8.6.0
Component/s: rdma-core
Labels:
- MigratedToJIRA
- Triaged

Regression:
None
Severity:
Important

Pool Team:

rhel-sst-network-drivers
Sub-System Group:

ssg_networking

Story Points:
None
Blocked:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
None

Preliminary Testing:
None
Test Coverage:
None

Release Note Type:
If docs needed, set a value

Experience:
Architecture:

Unspecified
Bugzilla Bug:
RHBZ: 2154487

PX Impact Score:
PX Priority Data:
PX Review Complete:
PX Scheduling Request:
SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

Description of problem:

rdma-ndd service runs as unconfined_service_t

$ cat sos_commands/selinux/ps_auxZww | grep unconfined_service
system_u:system_r:unconfined_service_t:s0 root 2442 0.0 0.0 42364 2120 ? Ss 11:59 0:01 /usr/sbin/rdma-ndd --systemd

This is breaking CIS compliance rule

Version-Release number of selected component (if applicable):

OpenShift 4.11
rdma-core-37.2-1.el8.x86_64

How reproducible:

100%

Steps to Reproduce:
1.
2.
3.

Actual results:

Expected results:

Additional info:

external trackers

Red Hat Customer Portal 03274398

Red Hat Customer Portal 03399011

Red Hat Customer Portal 03439247

Red Hat Issue Tracker COMPLY-974

Red Hat Issue Tracker RHELPLAN-142834

Assignee:: Izabela Bakollari

Reporter:: Chen Chen

Developer:: Izabela Bakollari

QA Contact:: Afom Michael

Votes:: 0 Vote for this issue

Watchers:: 10 Start watching this issue

Created:: 2023/09/21 2:28 PM

Updated:: 2024/10/23 5:12 PM

Resolved:: 2024/04/26 1:45 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates